Patent Application of Y. Tsukamura for 

"Multi-Mode Token" continued 
18 



Aj 


Autnenticator or 1 erminal J 


L 


License, Certificate 


Ao 


Certificate Module 


Li 


License, Certificate issued to I 


Bi 


Token of User I 


LE 


Certificate of key E 


Co 


System Master Common Key 


LV 


Certificate of key V 


Ci 


Common Key of User I, symmetric key 


M 


Plaintext 


Di 


Private Decryption Key of User I, 
asymmetric key 


Ml 


Plaintext to or from User I 


TVT2 
JNl 


ID# oi User 1 


Ei 


Public Encryption Key of User I 


INK 


Random Number 


b 


Unique reature 


O 


System Authority 


hi 


Unique Feature of User I 


P 


Ciphertext 


Fl 


First Unique Feature (PIN/Password) 


Pi 


Ciphertext of User I 


F2 


Second Unique Feature (Biometrics) 


Qi 


Challenge Message sent to User I 


G 


Value of Mode Counter 


Ri 


Response Message from User I 


Gl 


Value of Mode 1 Counter 


Si 


Signing Key of I 


G2 


Value of Mode 2 Counter 


So 


Signing Key of O 


G3 


Value of Mode 3 Counter 


TC 


Expiration Date of Ci 


G4 


Value of Mode 4 Counter 


TE 


Expiration Date of Certificate LE 


H 


Authentication Reference 
Hash Value of Unique Feature 


TL 


Logon Time 


HI 


Hash Value of PIN or Password Fl 


TM 


Mode Expiration Period 


H2 


Feature Vector of Biometrics F2 


TP 


Present Time 


I 


User 


TV 


Expiration Date of Certificate LV 


J 


Local Terminal 


Ui 


Message Authorized by I, signed by Si 


K 


Key C, D, E, S, V 


Vi 


Verification key of I 


K{M} 


Cryptographic Operation 
M is encrypted by K 


Vo 


Verification key of O 



FIG 1: Notation 
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(201) P = K{M} M is encrypted by K 

(202) M = K{P} P is decrypted by K 

(203) TP - TL < TM 

(204) G>0 

(205) Ci = Co{Ni + TC} 

(207) LEi = So {Ni, Ei, TE} 

(208) Vo {LEi} => Ni, Ei, TE 

(209) LVi = So {Ni, Vi, TV} 

(210) Vo {LVi} => Ni, Vi, TV 

(211) Qi = NR + TP 

(212) or Qi = Mi + TP 

(213) Ri = Ci{Qi} 

(214) Ci{Ri}=>Qi 

(215) Ri = Di{Qi} 

(216) Ei{Ri}=>Qi 

(217) Pi = Ei{Mi} 

(218) Mi = Di{Pi} 

(219) Ui = Si{Mi} 

(220) Vi{Ui}=>Mi 

FIG 2: Formulae 
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FIG 3: Block Diagram of the System of This Invention 
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FIG 4: An Example of the Modes of a Multi-Mode Token 
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FIG 5: The Register & Counter values of a Multi-Mode Token 
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FIG 6: A Table of the Basic User Data Stored in a Multi-Mode Token 
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FIG 7: An Example of Multi-Mode Settings 
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FIG 8A: Initialization Flow of Token 
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FIG 8B: Initialization Flow of a Token (continued) 
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FIG 9: Flow of Multi-Mode Token Logon 
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FIG 10: Flow of Mode 1 Operation 
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FIG 12: Flow of Mode 2, Decryption 
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FIG 13: Flow of Mode 2, Payment 
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FIG 14: Flow of Mode 3 Payment/Authorization 
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FIG 15: Flow of Mode 4 Payment/ Authorization 



